-
Notifications
You must be signed in to change notification settings - Fork 166
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Clarify U2F attestation verification #857
Comments
Thanks, it turns out the [FIDO-CTAP] reference was actually wrong and should instead be a reference to [FIDO-U2F-Message-Formats]. |
@emlun maybe "1. Convert the COSE_KEY formatted |credentialPublicKey| (see Section 7 of [[!RFC8152]]) to Raw ANSI X9.62 public key format(see ALG_KEY_ECC_X962_RAW in Section 3.6.2 of [[!FIDO-Registry]]). |
@herrjemand For the record, could you submit that as a review in PR #861 instead? |
@herrjemand Bump |
@emlun Sorry have not seen you previous message *) |
1 similar comment
@emlun Sorry have not seen you previous message *) |
Step 4 of the U2F attestation verification procedure could use some clarification:
Suggest adding "Section XYZ of [FIDO-CTAP]. CTAP is a big spec and it's not immediately clear that there's actually any section that defines a public key format.
I think a final bullet should be added stating
Let publicKeyU2F be the concatenation of (0x04 || x || y).
The text was updated successfully, but these errors were encountered: